Browse Source

Premier commit

Benjamin Gaudé 11 months ago
parent
commit
9b16803cd2
10 changed files with 1022 additions and 0 deletions
  1. 42
    0
      .gitignore
  2. 26
    0
      Makefile
  3. 4
    0
      README.md
  4. 90
    0
      apps.mk
  5. 481
    0
      dicos/61_pve.xml
  6. 187
    0
      eole.mk
  7. 5
    0
      logrotate/pve
  8. 28
    0
      tmpl/mse-logrotate-apache.conf
  9. 25
    0
      tmpl/mse-logrotate.conf
  10. 134
    0
      tmpl/pvebundle-parameters.yml

+ 42
- 0
.gitignore View File

@@ -0,0 +1,42 @@
1
+# Backup and swap files
2
+*~
3
+*#
4
+*.swp
5
+
6
+### Python code
7
+*.py[cod]
8
+
9
+# C extensions
10
+*.so
11
+
12
+# Packages
13
+*.egg
14
+*.egg-info
15
+dist
16
+build
17
+eggs
18
+parts
19
+bin
20
+var
21
+sdist
22
+develop-eggs
23
+.installed.cfg
24
+lib
25
+lib64
26
+__pycache__
27
+
28
+# Installer logs
29
+pip-log.txt
30
+
31
+# Unit test / coverage reports
32
+.coverage
33
+.tox
34
+nosetests.xml
35
+
36
+# Translations
37
+*.mo
38
+
39
+# Mr Developer
40
+.mr.developer.cfg
41
+.project
42
+.pydevproject

+ 26
- 0
Makefile View File

@@ -0,0 +1,26 @@
1
+################################
2
+# Makefile pour mse
3
+################################
4
+
5
+SOURCE=mse
6
+VERSION=2.5
7
+EOLE_VERSION=2.5.2
8
+PKGAPPS=non
9
+#FLASK_MODULE=<APPLICATION>
10
+
11
+################################
12
+# Début de zone à ne pas éditer
13
+################################
14
+
15
+include eole.mk
16
+include apps.mk
17
+
18
+################################
19
+# Fin de zone à ne pas éditer
20
+################################
21
+
22
+# Makefile rules dedicated to application
23
+# if exists
24
+ifneq (, $(strip $(wildcard $(SOURCE).mk)))
25
+include $(SOURCE).mk
26
+endif

+ 4
- 0
README.md View File

@@ -0,0 +1,4 @@
1
+eole-mse
2
+========
3
+
4
+Eolisation de l'application MSE

+ 90
- 0
apps.mk View File

@@ -0,0 +1,90 @@
1
+# 
2
+# NE PAS EDITER CE FICHIER
3
+#
4
+# Utiliser <appli>.mk à inclure à la fin de Makefile
5
+
6
+# Le variables suivantes sont a votre disposition : 
7
+#
8
+# SRC_APPS        : Répertoire des sources de l'application
9
+# SRC_APPS_PLUGIN : Répertoires des plugins pour l'application
10
+# SRC_APPS_LANG   : Répértoires des traductions
11
+#
12
+
13
+##########################
14
+# Application web envole #
15
+##########################
16
+ifneq (, $(filter oui web, $(PKGAPPS)))
17
+# Envole
18
+sharenvole_PROG_DIR	:= $(DESTDIR)/usr/share/envole/$(SOURCE)
19
+
20
+SRC_APPS		:= src/$(SOURCE)-$(VERSION)
21
+SRC_APPS_PLUGIN		:= src/plugins-$(VERSION)
22
+SRC_APPS_LANG		:= src/lang-$(VERSION)
23
+
24
+APPS_DEST		:= $(DESTDIR)/var/www/html/$(SOURCE)
25
+LANG_DEST		:= $(APPS_DEST)/lang
26
+PLUGIN_DEST		:= $(APPS_DEST)/plugin
27
+
28
+# Sanity check
29
+ifeq (, $(filter-out X.X, $(strip $(VERSION))))
30
+$(error $$(VERSION) variable has incorrect value '$(VERSION)')
31
+endif
32
+
33
+ifeq (, $(strip $(wildcard $(SRC_APPS))))
34
+$(error $$(PKGAPPS) is enable but $$(SRC_APPS)='$(SRC_APPS)' does not exist)
35
+endif
36
+
37
+endif
38
+
39
+##########################
40
+# Application EOLE flask #
41
+##########################
42
+ifneq (, $(filter flask, $(PKGAPPS)))
43
+# Sanity check
44
+ifeq (, $(filter-out XXX, $(strip $(FLASK_MODULE))))
45
+$(error $$(FLASK_MODULE) variable has incorrect value '$(FLASK_MODULE)')
46
+endif
47
+
48
+ifeq (, $(strip $(wildcard src/$(FLASK_MODULE).conf)))
49
+$(error missing eoleflask configuration file 'src/$(FLASK_MODULE).conf')
50
+endif
51
+
52
+# Static files
53
+SRC_APPS	:= src/$(FLASK_MODULE)/static
54
+APPS_MOUNT_POINT:= $(shell sed -ne 's|^"MOUNT_POINT"[[:space:]]*:[[:space:]]*"/\([^"]*\)",|\1|p' \
55
+	src/$(FLASK_MODULE).conf)
56
+APPS_DEST	:= $(DESTDIR)/usr/share/eole/flask/$(APPS_MOUNT_POINT)/static
57
+
58
+SRC_APPS_PLUGIN	:= nonexistent
59
+SRC_APPS_LANG	:= nonexistent
60
+
61
+# eole-flask configuration
62
+src_DATA_DIR	:= $(DESTDIR)/etc/eole/flask/available
63
+endif
64
+
65
+
66
+################
67
+# Common rules #
68
+################
69
+ifneq (, $(filter oui web flask, $(PKGAPPS)))
70
+
71
+install-apps-dirs::
72
+	test ! -d $(SRC_APPS)           || $(INSTALL_DIRECTORY) $(APPS_DEST)
73
+	test ! -d $(SRC_APPS_LANG)      || $(INSTALL_DIRECTORY) $(LANG_DEST)
74
+	test ! -d $(SRC_APPS_PLUGIN)    || $(INSTALL_DIRECTORY) $(PLUGIN_DEST)
75
+
76
+install-apps:: install-apps-dirs
77
+	# Installation de l'application
78
+	$(call fc_install_file,$(INSTALL_RECURSIVE),$(SRC_APPS),$(APPS_DEST))
79
+
80
+	# Installation des répertoires de plugins
81
+	$(call fc_install_file,$(INSTALL_RECURSIVE),$(SRC_APPS_PLUGIN),$(PLUGIN_DEST))
82
+
83
+	# Installation des répertoires de traductions (lang)
84
+	$(call fc_install_file,$(INSTALL_RECURSIVE),$(SRC_APPS_LANG),$(LANG_DEST))
85
+
86
+## Add install-apps
87
+install:: install-apps
88
+endif
89
+
90
+.PHONY: install-apps install-apps-dirs

+ 481
- 0
dicos/61_pve.xml View File

@@ -0,0 +1,481 @@
1
+<?xml version="1.0" encoding="utf-8"?>
2
+<creole>
3
+
4
+	<package>mse</package>
5
+
6
+	<files>
7
+		<!--<file filelist='pvebundle' name='/etc/eole/eole-db.d/pve-db.yml' source='pve-db.yml' rm='True' mkdir='True'/> -->
8
+		<file filelist='mse-sys-lr-apache' name='/etc/logrotate.d/apache2' source='mse-logrotate-apache.conf' rm='True' mkdir='True'/>
9
+		<file filelist='mse-sys-lr' name='/etc/logrotate.d/mse' source='mse-logrotate.conf' rm='True' mkdir='True'/>
10
+	</files>
11
+
12
+	<containers>
13
+		<container name='web'>
14
+			<!-- services de configuration apache -->
15
+			<service method="apache" servicelist="pvebundle"    >pvebundle</service>
16
+			<service method="apache" servicelist="pvebundle"    >pvelogin</service>
17
+			<service method="apache" servicelist="pvebundle"    >pveredirect</service>
18
+			<service method="apache" servicelist="pvebundle"    >pveportal</service>
19
+
20
+			<service_access service='apache'>
21
+				<port>8444</port>
22
+			</service_access>
23
+
24
+			<!-- fichier de configuration de apache
25
+			<file filelist='pvebundle'     name='/etc/apache2/sites-available/pvebundle'     				source='pvebundle-apache.conf'/>
26
+			<file filelist='pvebundle'     name='/etc/apache2/sites-available/pvelogin'      				source='pvelogin-apache.conf'/>
27
+			<file filelist='pvebundle'     name='/etc/apache2/sites-available/pveredirect'   				source='pveredirect-apache.conf'/>
28
+			<file filelist='pvebundle'     name='/etc/apache2/sites-available/pveportal'   				source='pveportal-apache.conf'/>
29
+			 -->
30
+			<!-- services de configuration pveredirect
31
+			<file filelist='pvebundle'     name='/var/www/html/pveredirect/index.php'      	  			source='pveredirect-index.php'  	rm='True'/>
32
+			 -->
33
+			<!-- services de configuration pvelogin
34
+			<file filelist='pvebundle'     name='/var/www/html/pvelogin/mysql.php'            			source='pvelogin-mysql.php'     	rm='True'/>
35
+			<file filelist='pvebundle'     name='/var/www/html/pvelogin/alogin.php'           			source='pvelogin-alogin.php'   		rm='True'/>
36
+			<file filelist='pvebundle'     name='/var/www/html/pvelogin/alogout.php'           			source='pvelogin-alogout.php'   		rm='True'/>
37
+			<file filelist='pvebundle'     name='/var/www/html/portal/includes/pve.conf'	                source='pvebundle-pve.conf'   		rm='True'/>
38
+			 -->
39
+			<!-- services de configuration de l'application  -->
40
+      <file filelist='pve' name='/var/www/html/pve/app/config/parameters.yml' source='pvebundle-parameters.yml' rm='True' mkdir="True"/>
41
+
42
+			<!-- <file filelist='pvebundle'     name='/var/www/html/portal/toomuch/index.html'     			source='toomuch-index.html'  	rm='True'/>
43
+			 -->
44
+		</container>
45
+	</containers>
46
+
47
+	<variables>
48
+		<family name='MSE'>
49
+			<!-- SERVICES -->
50
+			<variable name='activer_pvebundle' type='oui/non' description='Activer Profil MSE'>
51
+				<value>non</value>
52
+			</variable>
53
+			<variable name='activer_supportbundle' type='oui/non' description='Activer Support MSE'>
54
+				<value>oui</value>
55
+			</variable>
56
+			<variable name='activer_wsdlbundle' type='oui/non' description='Activer webservices MSE'>
57
+				<value>oui</value>
58
+			</variable>
59
+			<variable name='activer_logrotate_apache' type='oui/non' description='Configurer un logrotate pour apache'>
60
+				<value>oui</value>
61
+			</variable>
62
+			<variable name='pve_infravtech' type='oui/non' description='Infrastructure VTech (interfaces réseau eth0/eth1 avec eth0 en IP publique) ?'>
63
+				<value>non</value>
64
+			</variable>
65
+
66
+			<!-- GENERAL MSE BUNDLE -->
67
+
68
+			<variable name='pvebundle_ipbdd'            type='string' description="Adresse du serveur BDD" mandatory="True">
69
+				<value>127.0.0.1</value>
70
+			</variable>
71
+			<variable name='pvebundle_urllogin'         type='string' description="URL du serveur d'authentification" mandatory="True">
72
+				<value>change_me</value>
73
+			</variable>
74
+			<variable name='pvebundle_urllogout'        type='string' description="URL de gestion de la deconnexion du portail" mandatory="True">
75
+				<value>/envole/logout</value>
76
+			</variable>
77
+			<variable name='pvebundle_check_timeout_url'        type='string' description="URL de gestion de la deconnexion automatique" mandatory="True">
78
+				<value>/envole/ajax/check-timeout</value>
79
+			</variable>
80
+			<variable name='pvebundle_idle_timeout'     type='number' description="Déconnexion automatique après (en minutes)" mandatory="True">
81
+				<value>60</value>
82
+			</variable>
83
+			<variable name='pvebundle_domain'     type='string' description="Nom de domaine utilisé pour accéder au MSE" mandatory="True">
84
+				<value>messervices.etudiant.gouv.fr</value>
85
+			</variable>
86
+			<variable name='pvebundle_scheme'     type='string' description="Protocole utilisé pour accéder au MSE" mandatory="True">
87
+				<value>https</value>
88
+			</variable>
89
+			<variable name='pvebundle_baseurl'     type='string' description="URL racine pour accéder au MSE" mandatory="True">
90
+				<value>pve</value>
91
+			</variable>
92
+			<variable name='pvebundle_portal_url'       type='string' description="URL du portail Envole" mandatory="False">
93
+				<value>/</value>
94
+			</variable>
95
+			<variable name='pvebundle_contact_mail'     type='string' description="Email de contact (Relation Presse)" mandatory="True">
96
+				<value>communication@cnous.fr</value>
97
+			</variable>
98
+
99
+			<!-- LDAP -->
100
+			<variable name='pvebundle_ldapserveur'      type='string' description="Adresse du serveur LDAP" mandatory="True">
101
+				<value>127.0.0.1</value>
102
+			</variable>
103
+			<variable name='pvebundle_ldapport'         type='string' description="Port du serveur LDAP" mandatory="True">
104
+				<value>389</value>
105
+			</variable>
106
+			<variable name='pvebundle_ldapbase'         type='string' description="Chemin de recherche dans l'annuaire" mandatory="True">
107
+				<value>ou=crous-toulouse,ou=education,o=gouv,c=fr</value>
108
+			</variable>
109
+			<variable name='pvebundle_ldapdn'           type='string' description="Utilisateur d'écriture dans l'annuaire" mandatory="True">
110
+				<value>cn=writer,o=gouv,c=fr</value>
111
+			</variable>
112
+			<variable name='pvebundle_ldappwd'          type='string' description="Mot de passe utilisateur d'écriture dans l'annuaire" mandatory="True">
113
+				<value>change_me</value>
114
+			</variable>
115
+
116
+
117
+			<!-- REVERSE PROXY -->
118
+
119
+			<variable name='pvebundle_reverse_proxy'    type='string' description="Adresse IP du reverse proxy en frontal" mandatory="False" />
120
+
121
+			<!-- SAML -->
122
+			<variable name='cnous_pve_service_saml_logout' type='string' description="URL de deconnexion SAML" mandatory="True">
123
+				<value>http://localhost/idp/profile/Logout</value>
124
+			</variable>
125
+			<variable name='saml_idp_entity_id' type='string' description="IDP Entity ID" mandatory="False">
126
+				<value>test</value>
127
+			</variable>
128
+			<variable name='saml_idp_single_sign_on_service_url' type='string' description="IDP SSO service URL" mandatory="False">
129
+				<value>test</value>
130
+			</variable>
131
+			<variable name='saml_idp_single_logout_service_url' type='string' description="IDP SLO service URL" mandatory="False">
132
+				<value>test</value>
133
+			</variable>
134
+			<variable name='saml_sp_entity_id' type='string' description="SP Entity ID" mandatory="False">
135
+				<value>test</value>
136
+			</variable>
137
+			<variable name='saml_sp_assertion_consumer_service_url' type='string' description="SP Assertion consumer service URL" mandatory="False">
138
+				<value>test</value>
139
+			</variable>
140
+			<variable name='saml_sp_assertion_consumer_service_binding' type='string' description="SP assertion consumer service binding" mandatory="False">
141
+				<value>test</value>
142
+			</variable>
143
+			<variable name='saml_sp_single_logout_service_url' type='string' description="SP logout service URL" mandatory="False">
144
+				<value>test</value>
145
+			</variable>
146
+			<variable name='saml_sp_single_logout_service_binding' type='string' description="SP logout service binding" mandatory="False">
147
+				<value>test</value>
148
+			</variable>
149
+			<variable name='saml_sp_name_id_format' type='string' description="SP Name ID Format" mandatory="False">
150
+				<value>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</value>
151
+			</variable>
152
+			<variable name='saml_security_name_id_encrypted' type='string' description="Name ID encrypted" mandatory="False">
153
+				<value>false</value>
154
+			</variable>
155
+			<variable name='saml_security_authn_requests_signed' type='string' description="Authn request signed" mandatory="False">
156
+				<value>false</value>
157
+			</variable>
158
+			<variable name='saml_security_logout_request_signed' type='string' description="Logout request signed" mandatory="False">
159
+				<value>false</value>
160
+			</variable>
161
+			<variable name='saml_security_logout_response_signed' type='string' description="Logout response signed" mandatory="False">
162
+				<value>false</value>
163
+			</variable>
164
+			<variable name='saml_security_want_messages_signed' type='string' description="Want messages signed" mandatory="False">
165
+				<value>false</value>
166
+			</variable>
167
+			<variable name='saml_security_want_assertions_signed' type='string' description="Want assertions signed" mandatory="False">
168
+				<value>false</value>
169
+			</variable>
170
+			<variable name='saml_security_want_name_id_encrypted' type='string' description="Want name ID encrypted" mandatory="False">
171
+				<value>false</value>
172
+			</variable>
173
+			<variable name='saml_security_request_authn_context' type='string' description="Request authn context" mandatory="False">
174
+				<value>false</value>
175
+			</variable>
176
+			<variable name='saml_security_sign_metadata' type='string' description="Sign metadata" mandatory="False">
177
+				<value>false</value>
178
+			</variable>
179
+			<variable name='saml_security_want_xml_validation' type='string' description="Want XML validation" mandatory="False">
180
+				<value>false</value>
181
+			</variable>
182
+			<variable name='saml_security_signature_algorithm' type='string' description="Signature Algorithm" mandatory="False">
183
+				<value>http://www.w3.org/2000/09/xmldsig#rsa-sha1</value>
184
+			</variable>
185
+			<!-- AGLAE -->
186
+
187
+			<variable name='pvebundle_aglae_wsdl_url'     type='string' description="URL du WSDL des webservices AGLAE" mandatory="True">
188
+				<value>http://localhost</value>
189
+			</variable>
190
+			<variable name='pvebundle_aglae_systemid'     type='string' description="Systeme ID pour communiquer avec les webservices AGLAE" mandatory="True">
191
+				<value>MSE</value>
192
+			</variable>
193
+			<variable name='pvebundle_aglae_mdp'     type='string' description="Mot de passe pour communiquer avec les webservices AGLAE" mandatory="True">
194
+				<value>change_me</value>
195
+			</variable>
196
+			<variable name='pvebundle_aglae_surveillance_wsdl_url'     type='string' description="URL du WSDL Surveillance des webservices AGLAE" mandatory="True">
197
+				<value>http://localhost</value>
198
+			</variable>
199
+			<variable name='pvebundle_aglae_sftp_host'     type='string' description="AGLAE SFTP serveur" mandatory="True">
200
+				<value>localhost</value>
201
+			</variable>
202
+
203
+			<variable name='pvebundle_aglae_sftp_port'     type='number' description="AGLAE SFTP port" mandatory="True">
204
+				<value>22</value>
205
+			</variable>
206
+
207
+			<variable name='pvebundle_aglae_sftp_user'     type='string' description="AGLAE SFTP utilisateur" mandatory="True">
208
+				<value>root</value>
209
+			</variable>
210
+
211
+			<variable name='pvebundle_aglae_sftp_password'     type='string' description="AGLAE SFTP mot de passe" mandatory="True">
212
+				<value>password</value>
213
+			</variable>
214
+
215
+			<variable name='pvebundle_aglae_sftp_remote_import_path'     type='string' description="AGLAE SFTP repertoire distant pour fichier a importer" mandatory="True">
216
+				<value>/tmp/export</value>
217
+			</variable>
218
+			<variable name='wsdlbundle_aglae_passwd' type='string' description="Mot de passe pour les webservices dédiés à AGLAE" mandatory="True">
219
+				<value>change_me</value>
220
+			</variable>
221
+
222
+			<!-- CENTRALE LOGEMENT -->
223
+
224
+			<variable name='pvebundle_centrale_wsdl_url'     type='string' description="URL du WSDL des webservices CENTRALE" mandatory="True">
225
+				<value>http://localhost</value>
226
+			</variable>
227
+			<variable name='pvebundle_centrale_systemid'     type='string' description="URL du WSDL des webservices CENTRALE" mandatory="True">
228
+				<value>MSE</value>
229
+			</variable>
230
+			<variable name='pvebundle_centrale_mdp'     type='string' description="Mot de passe pour communiquer avec les webservices MSE vers CENTRALE" mandatory="True">
231
+				<value>change_me</value>
232
+			</variable>
233
+
234
+			<variable name='pvebundle_centrale_surveillance_wsdl_url'     type='string' description="URL du WSDL des webservices surveillance CENTRALE" mandatory="True">
235
+				<value>http://localhost</value>
236
+			</variable>
237
+			<variable name='wsdlbundle_centrale_passwd' type='string' description="Mot de passe pour les webservices dédiés à CENTRAL LOGEMENT" mandatory="True">
238
+				<value>change_me</value>
239
+			</variable>
240
+
241
+			<!-- ABP -->
242
+
243
+			<variable name='pvebundle_apb_wsdl_url'     type='string' description="URL du WSDL des webservices APB" mandatory="True">
244
+				<value>http://test.admission-postbac.fr/ServicesWebPostbac/services/Pve2apbServiceWEB?wsdl</value>
245
+			</variable>
246
+			<variable name='pvebundle_apb_systemid'     type='string' description="Identifiant pour l'appel au webservice APB distant" mandatory="True">
247
+				<value>MSE</value>
248
+			</variable>
249
+			<variable name='pvebundle_apb_mdp'          type='string' description="Mot de passe pour l'appel au webservice APB distant" mandatory="True">
250
+				<value>change_me</value>
251
+			</variable>
252
+
253
+			<!-- ANALYTICS -->
254
+
255
+			<variable name='pvebundle_google_analytics_id' type='string' description="Identifiant Google Analytics" mandatory="False" />
256
+
257
+			<!-- SMTP -->
258
+
259
+			<variable name='pvebundle_ipsmtp'      type='string' description="Adresse IP de la passerelle SMTP" mandatory="True">
260
+				<value>127.0.0.1</value>
261
+			</variable>
262
+			<variable name='wsdlbundle_apb_passwd'    type='string' description="Mot de passe pour les webservices dédiés à APB" mandatory="True">
263
+				<value>change_me</value>
264
+			</variable>
265
+
266
+			<!-- IZLY -->
267
+
268
+			<variable name='pvebundle_izly_sftp_host'     type='string' description="IZLY SFTP serveur" mandatory="True">
269
+				<value>localhost</value>
270
+			</variable>
271
+			<variable name='pvebundle_izly_sftp_port'     type='number' description="IZLY SFTP port" mandatory="True">
272
+				<value>22</value>
273
+			</variable>
274
+			<variable name='pvebundle_izly_export_start_date'     type='string' description="Date de début des exports IZLY (format jj/mm)" mandatory="True">
275
+				<value>15/01</value>
276
+			</variable>
277
+			<variable name='pvebundle_izly_export_end_date'     type='string' description="Date de fin des exports IZLY (format jj/mm)" mandatory="True">
278
+				<value>30/06</value>
279
+			</variable>
280
+			<variable name='pvebundle_izly_sftp_user'     type='string' description="IZLY SFTP utilisateur" mandatory="True">
281
+				<value>root</value>
282
+			</variable>
283
+			<variable name='pvebundle_izly_sftp_password'     type='string' description="IZLY SFTP mot de passe" mandatory="True">
284
+				<value>password</value>
285
+			</variable>
286
+			<variable name='pvebundle_izly_sftp_remote_import_path'     type='string' description="IZLY SFTP repertoire distant pour import IM" mandatory="True">
287
+				<value>/tmp/export</value>
288
+			</variable>
289
+			<variable name='pvebundle_izly_sftp_remote_export_path'     type='string' description="IZLY SFTP repertoire distant pour export MI" mandatory="True">
290
+				<value>/tmp/import</value>
291
+			</variable>
292
+
293
+
294
+			<!-- JOBAVIZ -->
295
+			<variable name='wsdlbundle_jobaviz_passwd' type='string' description="Mot de passe pour les webservices dédiés à JOBAVIZ" mandatory="True">
296
+				<value>change_me</value>
297
+			</variable>
298
+
299
+			<!-- LOKAVIZ  -->
300
+			<variable name='wsdlbundle_lokaviz_passwd' type='string' description="Mot de passe pour les webservices dédiés à LOKAVIZ" mandatory="True">
301
+				<value>change_me</value>
302
+			</variable>
303
+
304
+			<!-- CITÉ-U -->
305
+			<variable name='wsdlbundle_citeu_passwd' type='string' description="Mot de passe pour les webservices dédiés à CITÉ-U" mandatory="True">
306
+				<value>change_me</value>
307
+			</variable>
308
+
309
+			<!-- RDV -->
310
+			<variable name='wsdlbundle_rdv_passwd' type='string' description="Mot de passe pour les webservices dédiés à RDV" mandatory="True">
311
+				<value>change_me</value>
312
+			</variable>
313
+
314
+			<!-- PASSCULTURE -->
315
+			<variable name='wsdlbundle_passculture_passwd' type='string' description="Mot de passe pour les webservices dédiés à PASSCULTURE" mandatory="True">
316
+				<value>change_me</value>
317
+			</variable>
318
+
319
+			<!-- BEDNCROUS -->
320
+			<variable name='wsdlbundle_bedncrous_passwd' type='string' description="Mot de passe pour les webservices dédiés à BEDNCROUS" mandatory="True">
321
+				<value>change_me</value>
322
+			</variable>
323
+
324
+			<!-- BON PLANS CROUS -->
325
+			<variable name='wsdlbundle_bonsplanscrous_passwd' type='string' description="Mot de passe pour les webservices dédiés à BON PLANS CROUS" mandatory="True">
326
+				<value>change_me</value>
327
+			</variable>
328
+
329
+			<!-- EVOTE -->
330
+			<variable name='wsdlbundle_evote_passwd' type='string' description="Mot de passe pour les webservices dédiés à EVOTE" mandatory="True">
331
+				<value>change_me</value>
332
+			</variable>
333
+
334
+			<!-- HEBERG -->
335
+			<variable name='wsdlbundle_heberg_passwd' type='string' description="Mot de passe pour les webservices dédiés à BEDNCROUS" mandatory="True">
336
+				<value>change_me</value>
337
+			</variable>
338
+
339
+			<!-- HEBERG -->
340
+			<variable name='wsdlbundle_cve_passwd' type='string' description="Mot de passe pour les webservices dédiés à CVE" mandatory="True">
341
+				<value>change_me</value>
342
+			</variable>
343
+
344
+			<!-- ???? -->
345
+			<variable name='smb_min_password_length' type='number' exists='False' description='Longueur minimale du mot de passe' mandatory='True'>
346
+				<value>6</value>
347
+			</variable>
348
+			<variable name='smb_min_password_class' type='number' exists='False' description='Nombre minimum de classes de caractères'>
349
+				<value>3</value>
350
+			</variable>
351
+			<variable name='ead_support_multietab' type='oui/non' exists='False' description='Mode multiétab' hidden='True'>
352
+				<value>non</value>
353
+			</variable>
354
+		</family>
355
+		<family name='MSE-Logrotate' mode='expert'>
356
+			<variable name='mse_lr_apache_period' type='string' description='Périodicité de la rotation'>
357
+				<value>weekly</value>
358
+			</variable>
359
+			<variable name='mse_lr_apache_rotate' type='number' description='Nombre de fichiers compressés à conserver'>
360
+				<value>52</value>
361
+			</variable>
362
+			<variable name='mse_lr_apache_maxage' type='number' description="Âge maximum des archives (en jours)">
363
+				<value>365</value>
364
+			</variable>
365
+			<variable name='mse_lr_apache_olddir' type='string' description="Emplacement des archives"/>
366
+
367
+			<variable name='activer_conf_lr' type='oui/non' description='Ajouter des configurations logrotate ?'>
368
+				<value>non</value>
369
+			</variable>
370
+
371
+			<variable name='mse_lr_tag' type='string' description='Fichier de journaux à traiter' multi='True'/>
372
+			<variable name='mse_lr_period' type='string' description='Périodicité de la rotation'>
373
+				<value>daily</value>
374
+			</variable>
375
+			<variable name='mse_lr_rotate' type='number' description='Nombre de fichiers compressés à conserver'>
376
+				<value>52</value>
377
+			</variable>
378
+			<variable name='mse_lr_maxage' type='number' description="Âge maximum des archives (en jours)">
379
+				<value>365</value>
380
+			</variable>
381
+			<variable name='mse_lr_olddir' type='string' description="Emplacement des archives"/>
382
+			<variable name='mse_lr_copytruncate' type='oui/non' description="Remise à 0 du fichier de journal">
383
+				<value>oui</value>
384
+			</variable>
385
+		</family>
386
+
387
+		<separators>
388
+			<separator name='activer_pvebundle'>Services et configurations du MSE</separator>
389
+			<separator name='pvebundle_ipbdd'>Configuration du bundle MSE</separator>
390
+			<separator name='pvebundle_ldapserveur'>Annuaire</separator>
391
+			<separator name='pvebundle_reverse_proxy'>Reverse Proxy</separator>
392
+			<separator name='cnous_pve_service_saml_logout'>SAML</separator>
393
+			<separator name='pvebundle_aglae_wsdl_url'>AGLAE</separator>
394
+			<separator name="pvebundle_centrale_wsdl_url">CENTRALE</separator>
395
+			<separator name='activer_conf_lr'>Configuration logrotate supplémentaire</separator>
396
+			<separator name='pvebundle_apb_wsdl_url'>APB</separator>
397
+			<separator name='pvebundle_google_analytics_id'>Analytics</separator>
398
+			<separator name='pvebundle_ipsmtp'>SMTP</separator>
399
+			<separator name='pvebundle_izly_sftp_host'>IZLY</separator>
400
+			<separator name='wsdlbundle_jobaviz_passwd'>JOBAVIZ</separator>
401
+			<separator name='wsdlbundle_lokaviz_passwd'>LOKAVIZ</separator>
402
+			<separator name='wsdlbundle_citeu_passwd'>CITÉ-u</separator>
403
+			<separator name='wsdlbundle_rdv_passwd'>RDV</separator>
404
+			<separator name='wsdlbundle_passculture_passwd'>PASS CULTURE</separator>
405
+			<separator name='wsdlbundle_bedncrous_passwd'>BEDNCROUS</separator>
406
+			<separator name='wsdlbundle_bonsplanscrous_passwd'>BON PLAN CROUS</separator>
407
+			<separator name='wsdlbundle_evote_passwd'>EVOTE</separator>
408
+			<separator name='smb_min_password_length'>WHAT</separator>
409
+			<separator name='mse_lr_apache_period'>Configuration des logrotate pour Apache</separator>
410
+		</separators>
411
+
412
+	</variables>
413
+
414
+	<constraints>
415
+		<check name='valid_enum' target='mse_lr_apache_period'>
416
+			<param>['daily', 'weekly', 'monthly', 'yearly']</param>
417
+		</check>
418
+		<check name='valid_enum' target='mse_lr_period'>
419
+			<param>['daily', 'weekly', 'monthly', 'yearly']</param>
420
+		</check>
421
+
422
+		<check name='valid_enum' target='smb_min_password_length'>
423
+			<param type="python">[str(i) for i in range(3, 13)]</param>
424
+		</check>
425
+		<check name='valid_enum' target='smb_min_password_class'>
426
+			<param>['1', '2', '3', '4']</param>
427
+		</check>
428
+		<check name='valid_enum' target='pvebundle_scheme'>
429
+			<param>['http', 'https']</param>
430
+		</check>
431
+
432
+		<condition name='disabled_if_in' source='activer_logrotate_apache'>
433
+			<param>non</param>
434
+			<target type='variable'>mse_lr_apache_period</target>
435
+			<target type='variable'>mse_lr_apache_rotate</target>
436
+			<target type='variable'>mse_lr_apache_olddir</target>
437
+			<target type='variable'>mse_lr_apache_maxage</target>
438
+			<target type='filelist'>mse-sys-lr-apache</target>
439
+		</condition>
440
+
441
+		<group master='mse_lr_tag'>
442
+			<slave>mse_lr_period</slave>
443
+			<slave>mse_lr_rotate</slave>
444
+			<slave>mse_lr_olddir</slave>
445
+			<slave>mse_lr_maxage</slave>
446
+			<slave>mse_lr_copytruncate</slave>
447
+		</group>
448
+
449
+		<condition name='disabled_if_in' source='activer_conf_lr'>
450
+			<param>non</param>
451
+			<target type='variable'>mse_lr_tag</target>
452
+			<target type='variable'>mse_lr_period</target>
453
+			<target type='variable'>mse_lr_rotate</target>
454
+			<target type='variable'>mse_lr_olddir</target>
455
+			<target type='variable'>mse_lr_copytruncate</target>
456
+			<target type='variable'>mse_lr_maxage</target>
457
+			<target type='filelist'>mse-sys-lr</target>
458
+		</condition>
459
+
460
+		<condition name='hidden_if_in' source='activer_pvebundle'>
461
+			<param>non</param>
462
+			<target type='filelist'   >pvebundle</target>
463
+			<target type='servicelist'>pvebundle</target>
464
+		</condition>
465
+
466
+		<condition name='hidden_if_in' source='activer_supportbundle'>
467
+			<param>non</param>
468
+			<target type='filelist'   >supportbundle</target>
469
+			<target type='servicelist'>supportbundle</target>
470
+		</condition>
471
+
472
+		<condition name='hidden_if_in' source='activer_wsdlbundle'>
473
+			<param>non</param>
474
+			<target type='filelist'   >wsdlbundle</target>
475
+			<target type='servicelist'>wsdlbundle</target>
476
+			<target type='variable'   >wsdlbundle_apb_passwd</target>
477
+			<target type='variable'   >wsdlbundle_aglae_passwd</target>
478
+		</condition>
479
+
480
+	</constraints>
481
+</creole>

+ 187
- 0
eole.mk View File

@@ -0,0 +1,187 @@
1
+# 
2
+# NE PAS EDITER CE FICHIER
3
+#
4
+# Utiliser <appli>.mk à inclure à la fin de Makefile
5
+
6
+#################
7
+# Sanity checks #
8
+#################
9
+
10
+ifeq (, $(DESTDIR))
11
+$(warning $$(DESTDIR) is empty, installation will be done in /)
12
+endif
13
+
14
+ifeq (, $(filter-out XXX-XXX, $(strip $(SOURCE))))
15
+$(error $$(SOURCE) variable has incorrect value '$(SOURCE)')
16
+endif
17
+
18
+#########################
19
+# Variables definitions #
20
+#########################
21
+
22
+INSTALL                 := install
23
+INSTALL_DATA            := install -m 644
24
+INSTALL_PROGRAM         := install -m 755
25
+INSTALL_DIRECTORY       := install -m 755 -d
26
+INSTALL_RECURSIVE       := cp -dr --no-preserve=ownership
27
+
28
+# Base
29
+eole_DIR                := $(DESTDIR)/usr/share/eole
30
+
31
+ifeq ($(strip $(EOLE_VERSION)), 2.3)
32
+diagnose_PROG_DIR       := $(eole_DIR)/diagnose/module
33
+else
34
+diagnose_PROG_DIR       := $(eole_DIR)/diagnose/
35
+endif
36
+
37
+# Creole
38
+creole_DIR              := $(eole_DIR)/creole
39
+dicos_DATA_DIR          := $(creole_DIR)/dicos
40
+tmpl_DATA_DIR           := $(creole_DIR)/distrib
41
+pretemplate_PROG_DIR    := $(eole_DIR)/pretemplate
42
+posttemplate_PROG_DIR   := $(eole_DIR)/posttemplate
43
+postservice_PROG_DIR    := $(eole_DIR)/postservice
44
+firewall_DATA_DIR       := $(eole_DIR)/firewall
45
+bacula_restore_DATA_DIR := $(eole_DIR)/bacula/restore
46
+bacula_fichier_DATA_DIR := $(DESTDIR)/etc/bacula/baculafichiers.d
47
+schedule_pre_PROG_DIR   := $(eole_DIR)/schedule/pre
48
+schedule_post_PROG_DIR  := $(eole_DIR)/schedule/post
49
+extra_REC_DIR		:= $(creole_DIR)/extra
50
+
51
+# Zéphir
52
+zephir_DATA_DIR         := $(DESTDIR)/usr/share/zephir
53
+zephir_configs_DATA_DIR := $(zephir_DATA_DIR)/monitor/configs
54
+zephir_srv_DATA_DIR     := $(zephir_configs_DATA_DIR)/services
55
+
56
+# SSO
57
+sso_DATA_DIR            := $(DESTDIR)/usr/share/sso
58
+sso_filtres_DATA_DIR    := $(sso_DATA_DIR)/app_filters
59
+sso_user-info_DATA_DIR  := $(sso_DATA_DIR)/user_infos
60
+
61
+# EAD
62
+ead_DATA_DIR            := $(DESTDIR)/usr/share/ead2/backend/config
63
+ead_actions_DATA_DIR    := $(ead_DATA_DIR)/actions
64
+ead_perms_DATA_DIR      := $(ead_DATA_DIR)/perms
65
+ead_roles_DATA_DIR      := $(ead_DATA_DIR)/roles
66
+
67
+# Program libraries goes under /usr/lib/<PROGRAM>/
68
+lib_$(SOURCE)_DATA_DIR	:= $(DESTDIR)/usr/lib/$(SOURCE)
69
+
70
+# Scripts Eole
71
+scripts_PROG_DIR        := $(eole_DIR)/sbin
72
+lib_eole_DATA_DIR	:= $(DESTDIR)/usr/lib/eole
73
+
74
+# LDAP
75
+ldap_passwords_DATA_DIR := $(eole_DIR)/annuaire/password_files
76
+
77
+# LXC
78
+lxc_DATA_DIR            := $(eole_DIR)/lxc
79
+lxc_fstab_DATA_DIR      := $(lxc_DATA_DIR)/fstab
80
+lxc_hosts_DATA_DIR	:= $(lxc_DATA_DIR)/hosts
81
+
82
+# SQL
83
+sql_DATA_DIR            := $(eole_DIR)/mysql/$(SOURCE)
84
+sql_gen_DATA_DIR        := $(sql_DATA_DIR)/gen
85
+sql_updates_DATA_DIR    := $(sql_DATA_DIR)/updates
86
+
87
+sql_conf_gen_DATA_DIR		:= $(eole_DIR)/applications/gen
88
+sql_conf_passwords_DATA_DIR	:= $(eole_DIR)/applications/passwords
89
+sql_conf_updates_DATA_DIR	:= $(eole_DIR)/applications/updates/$(SOURCE)
90
+
91
+# Certifs
92
+certs_DATA_DIR		:= $(eole_DIR)/certs
93
+
94
+# Logrotate
95
+logrotate_DATA_DIR      := $(DESTDIR)/etc/logrotate.d
96
+
97
+
98
+# Python modules
99
+ifneq ($(DESTDIR),)
100
+PYTHON_OPTS     := --root $(DESTDIR)
101
+endif
102
+
103
+#############################################
104
+# Common directories and files installation #
105
+#############################################
106
+
107
+all:
108
+
109
+install:: install-dirs install-files
110
+
111
+# $1 = command to run
112
+# $2 = source directory
113
+# $3 = destination directory
114
+define fc_install_file  
115
+	if [ -d $2 ]; then					\
116
+		for file in `ls -1 $2/`; do			\
117
+		   $1 $2/$$file $3 || true;			\
118
+	    done;						\
119
+	fi
120
+endef
121
+
122
+##
123
+## Directory creation
124
+##
125
+
126
+# use % to catch local name in $*
127
+# data, program and recursive directory require a corresponding
128
+# directory in local sources
129
+%_DATA_DIR %_PROG_DIR %REC_DIR:
130
+	test ! -d $(subst _,/,$*) || $(INSTALL_DIRECTORY) $($@)
131
+
132
+# Create the directory referenced by the variable without a local one.
133
+%_DIR:
134
+	$(INSTALL_DIRECTORY) $($@)
135
+
136
+##
137
+## Install files present directly under data, program and recursive directories
138
+##
139
+
140
+# $*   : name of variable
141
+# $($*): value of variable 
142
+%-instdata:
143
+	$(call fc_install_file, $(INSTALL_DATA), $(subst _,/,$(subst _DATA_DIR,,$*)), $($*))
144
+
145
+%-instprog:
146
+	$(call fc_install_file, $(INSTALL_PROGRAM), $(subst _,/,$(subst _PROG_DIR,,$*)), $($*))
147
+
148
+%-instrec:
149
+	$(call fc_install_file, $(INSTALL_RECURSIVE), $(subst _,/,$(subst _REC_DIR,,$*)), $($*))
150
+
151
+
152
+# Use second expansion as variables may be created in included
153
+# Makefiles
154
+.SECONDEXPANSION:
155
+
156
+# List of all directories
157
+installdirs_LIST	= $(foreach V, $(filter %_DIR, $(.VARIABLES)),	\
158
+				$(if $(filter file, $(origin $(V))),	\
159
+					$(V)))
160
+# List of data directories
161
+installdata_LIST	= $(filter %_DATA_DIR, $(installdirs_LIST))
162
+# List of program directories
163
+installprog_LIST	= $(filter %_PROG_DIR, $(installdirs_LIST))
164
+# List of recursive directories
165
+installrec_LIST	 	= $(filter %_REC_DIR, $(installdirs_LIST))
166
+
167
+# Expand directories to create as dependency
168
+# Use double-colon to permit user to define additionnal install-dirs
169
+install-dirs:: $$(installdirs_LIST)
170
+
171
+# Expand files to install as dependency
172
+# Use double-colon to permit user to define additionnal install-files
173
+install-files:: install-data-files install-prog-files install-rec-dirs
174
+
175
+install-data-files: $$(patsubst %,%-instdata,$$(installdata_LIST))
176
+
177
+install-prog-files: $$(patsubst %,%-instprog,$$(installprog_LIST))
178
+
179
+install-rec-dirs:   $$(patsubst %,%-instrec,$$(installrec_LIST))
180
+
181
+# Installation of python modules
182
+ifeq ($(shell test -f setup.py && echo 0), 0)
183
+install-files::
184
+	python setup.py install --no-compile --install-layout=deb $(PYTHON_OPTS)
185
+endif
186
+
187
+.PHONY: install install-dirs install-files install-data-files install-prog-files install-rec-dirs

+ 5
- 0
logrotate/pve View File

@@ -0,0 +1,5 @@
1
+/var/www/html/pve/app/logs/*.log {
2
+   rotate 15
3
+   weekly
4
+}
5
+

+ 28
- 0
tmpl/mse-logrotate-apache.conf View File

@@ -0,0 +1,28 @@
1
+/var/log/apache2/*log {
2
+    # 1 rotation par semaine
3
+    %%mse_lr_apache_period
4
+    # on fait des rotations sur 52 semaines
5
+    rotate %%mse_lr_apache_rotate
6
+    # on détruit les archives qui ont plus d'un an
7
+    maxage %%mse_lr_apache_maxage
8
+    # Si l'un des journaux décrit est manquant, aucune erreur n'est remontée.
9
+    missingok
10
+    # on ne fait rien si le fichier est vide
11
+    notifempty
12
+    # Lors de l'archivage de plusieurs fichiers de logues, les scripts pre et post rotate sont
13
+    # exécuté une fois par fichier. L'option "sharedscripts" fixe l'exécution de ces scripts à
14
+    # une seule fois.
15
+    sharedscripts
16
+    # Pour ne pas avoir à arrêter apache
17
+    copytruncate
18
+    # compression gzip du fichier
19
+    compress
20
+    # Insertion de la date dans l'archivage des journaux.
21
+    dateext
22
+%if %%is_empty(%%mse_lr_apache_olddir)
23
+    # les archives sont au même endroit que les log
24
+%else
25
+    # Toutes les archives sont stockées dans /var/archive/apache2/
26
+    olddir %%mse_lr_apache_olddir
27
+%end if
28
+}

+ 25
- 0
tmpl/mse-logrotate.conf View File

@@ -0,0 +1,25 @@
1
+%if %%getVar('mse_lr_tag','non') != 'non'
2
+	%for %%lrconf in %%mse_lr_tag
3
+%%lrconf {
4
+    %%lrconf.mse_lr_period
5
+    rotate %%lrconf.mse_lr_rotate
6
+    maxage %%lrconf.mse_lr_maxage
7
+    missingok
8
+    nocreate
9
+    notifempty
10
+    sharedscripts
11
+	%if	%%lrconf.mse_lr_copytruncate == 'oui'
12
+    copytruncate
13
+	%else
14
+    nocopytruncate
15
+	%end if
16
+    compress
17
+    dateext
18
+	%if %%is_empty(%%lrconf.mse_lr_olddir)
19
+    # No olddir
20
+	%else
21
+	olddir %%lrconf.mse_lr_olddir
22
+    %end if
23
+}
24
+	%end for
25
+%end if

+ 134
- 0
tmpl/pvebundle-parameters.yml View File

@@ -0,0 +1,134 @@
1
+# This file is auto-generated during the composer install
2
+parameters:
3
+    database_driver: pdo_mysql
4
+    database_host: %%pvebundle_ipbdd
5
+    database_password: "change_me"
6
+    database_port: null
7
+    database_name: pve
8
+    database_user: pve
9
+    mailer_transport: smtp
10
+    mailer_host: %%pvebundle_ipsmtp
11
+    mailer_user: ~
12
+    mailer_password: ~
13
+    mailer_auth_mode: ~
14
+    mailer_port: ~
15
+    locale: fr
16
+    secret: not_so_secret
17
+    ruby_path: ~
18
+    sass_path: ~
19
+    delivery_address: ~
20
+    cnous_pve.email.sender_address: noreply@messervices.etudiant.gouv.fr
21
+
22
+    cnous_pve.aglae.wsdl_url: %%pvebundle_aglae_wsdl_url
23
+    cnous_pve.aglae.systeme_id: %%pvebundle_aglae_systemid
24
+    cnous_pve.aglae.mdp: %%pvebundle_aglae_mdp
25
+
26
+    cnous_pve.centrale.wsdl_url: %%pvebundle_centrale_wsdl_url
27
+    cnous_pve.centrale.systeme_id: %%pvebundle_centrale_systemid
28
+    cnous_pve.centrale.mdp: %%pvebundle_centrale_mdp
29
+
30
+    cnous_pve.aglae_surveillance.wsdl_url: %%pvebundle_aglae_surveillance_wsdl_url
31
+    cnous_pve.centrale_surveillance.wsdl_url: %%pvebundle_centrale_surveillance_wsdl_url
32
+
33
+    cnous_pve.webservice.apb_client.wsdl_url: %%pvebundle_apb_wsdl_url
34
+    cnous_pve.webservice.apb_client.contexte.systeme_id: %%pvebundle_apb_systemid
35
+    cnous_pve.webservice.apb_client.contexte.mdp: %%pvebundle_apb_mdp
36
+
37
+    cnous_pve.enable_pve: %%activer_pvebundle
38
+    cnous_pve.enable_support: %%activer_supportbundle
39
+    cnous_pve.enable_webservices: %%activer_wsdlbundle
40
+
41
+    router.request_context.host: %%pvebundle_domain
42
+    router.request_context.scheme: %%pvebundle_scheme
43
+    router.request_context.base_url: %%pvebundle_baseurl
44
+
45
+    cnous_pve.service.logout_url: %%pvebundle_urllogout
46
+    cnous_pve.service.check_timeout_url: %%pvebundle_check_timeout_url
47
+    cnous_pve.service.cas.login_url: %%pvebundle_urllogin
48
+    cnous_pve.idle_timeout: %%pvebundle_idle_timeout
49
+
50
+    cnous_pve.service.ldap.host: %%pvebundle_ldapserveur
51
+    cnous_pve.service.ldap.port: %%pvebundle_ldapport
52
+    cnous_pve.service.ldap.base_dn: %%pvebundle_ldapbase
53
+    cnous_pve.service.ldap.user: %%pvebundle_ldapdn
54
+    cnous_pve.service.ldap.password: %%pvebundle_ldappwd
55
+    cnous_pve.proxy.trust: %%pvebundle_reverse_proxy
56
+    cnous_pve.portal_url: '%%pvebundle_portal_url'
57
+    cnous_pve.portal_frame_include_url: '%%pvebundle_portal_url?page=%s'
58
+    portal.images_directory: '%kernel.root_dir%/../web/uploads/portal_images'
59
+    cnous_pve.contact_mail: '%%pvebundle_contact_mail'
60
+    cnous_pve.google_analytics_id: '%%pvebundle_google_analytics_id'
61
+
62
+    dev_assetic_use_controller: false
63
+
64
+    cnous_pve.izly.sftp.host: %%pvebundle_izly_sftp_host
65
+    cnous_pve.izly.sftp.port: %%pvebundle_izly_sftp_port
66
+    cnous_pve.izly.sftp.user: %%pvebundle_izly_sftp_user
67
+    cnous_pve.izly.sftp.password: %%pvebundle_izly_sftp_password
68
+    cnous_pve.izly.sftp.remote_import_path: %%pvebundle_izly_sftp_remote_import_path
69
+    cnous_pve.izly.sftp.remote_export_path: %%pvebundle_izly_sftp_remote_export_path
70
+
71
+    cnous_pve.aglae.sftp.host: %%pvebundle_aglae_sftp_host
72
+    cnous_pve.aglae.sftp.port: %%pvebundle_aglae_sftp_port
73
+    cnous_pve.aglae.sftp.user: %%pvebundle_aglae_sftp_user
74
+    cnous_pve.aglae.sftp.password: %%pvebundle_aglae_sftp_password
75
+    cnous_pve.aglae.sftp.remote_import_path: %%pvebundle_aglae_sftp_remote_import_path
76
+
77
+%if %%is_defined('activer_wsdlbundle') and %%activer_wsdlbundle == 'oui'
78
+    cnous_pve.webservice.aglae.password: %%wsdlbundle_aglae_passwd
79
+    cnous_pve.webservice.apb.password: %%wsdlbundle_apb_passwd
80
+    cnous_pve.webservice.centrale.password: %%wsdlbundle_centrale_passwd
81
+    cnous_pve.webservice.bonsplanscrous.users:
82
+        BONSPLANSCROUS: %%wsdlbundle_bonsplanscrous_passwd
83
+    cnous_pve.webservice.common.users:
84
+        AGLAE: %%wsdlbundle_aglae_passwd
85
+        JOBAVIZ: %%wsdlbundle_jobaviz_passwd
86
+        LOKAVIZ: %%wsdlbundle_lokaviz_passwd
87
+        CITEU: %%wsdlbundle_citeu_passwd
88
+        RDV: %%wsdlbundle_rdv_passwd
89
+        PASSCULTURE: %%wsdlbundle_passculture_passwd
90
+        BEDNCROUS: %%wsdlbundle_bedncrous_passwd
91
+        HEBERG:  %%wsdlbundle_heberg_passwd
92
+        CVE:  %%wsdlbundle_cve_passwd
93
+
94
+    cnous_pve.webservice.evote.users:
95
+        CITEU: %%wsdlbundle_evote_passwd
96
+%end if
97
+
98
+    cnous_pve.validator.valid_password.min_password_length: %%smb_min_password_length
99
+    cnous_pve.validator.valid_password.min_password_class: %%smb_min_password_class
100
+
101
+%if %%is_defined('activer_pvebundle') and %%activer_pvebundle == 'oui'
102
+    cnous_pve.support.enable_cas: true
103
+%else
104
+    cnous_pve.support.enable_cas: false
105
+%end if
106
+    # RT#1293: Ajout d'un interface de supervision des sessions en cours dans le BO
107
+    posh.sessions_limit_file: "/var/www/html/posh/templates/pve/sessions_limit.php"
108
+    besimple.soap.exception_listener.class: 'Cnous\WebServiceBundle\EventListener\SoapExceptionListener'
109
+
110
+    # SAML
111
+    cnous_pve.service.saml.logout_url: %%cnous_pve_service_saml_logout
112
+    saml_idp_entity_id: %%saml_idp_entity_id
113
+    saml_idp_single_sign_on_service_url: %%saml_idp_single_sign_on_service_url
114
+    saml_idp_single_logout_service_url: %%saml_idp_single_logout_service_url
115
+    saml_idp_x509_cert: %include "/root/saml/idp.crt"
116
+    saml_sp_entity_id: %%saml_sp_entity_id
117
+    saml_sp_assertion_consumer_service_url: %%saml_sp_assertion_consumer_service_url
118
+    saml_sp_assertion_consumer_service_binding: %%saml_sp_assertion_consumer_service_binding
119
+    saml_sp_single_logout_service_url: %%saml_sp_single_logout_service_url
120
+    saml_sp_single_logout_service_binding: %%saml_sp_single_logout_service_binding
121
+    saml_sp_x509_cert: %include "/root/saml/sp-cert.pem"
122
+    saml_sp_private_key: %include "/root/saml/key.pem"
123
+    saml_sp_name_id_format: %%saml_sp_name_id_format
124
+    saml_security_name_id_encrypted: %%saml_security_name_id_encrypted
125
+    saml_security_authn_requests_signed: %%saml_security_authn_requests_signed
126
+    saml_security_logout_request_signed: %%saml_security_logout_request_signed
127
+    saml_security_logout_response_signed: %%saml_security_logout_response_signed
128
+    saml_security_want_messages_signed: %%saml_security_want_messages_signed
129
+    saml_security_want_assertions_signed: %%saml_security_want_assertions_signed
130
+    saml_security_want_name_id_encrypted: %%saml_security_want_name_id_encrypted
131
+    saml_security_request_authn_context: %%saml_security_request_authn_context
132
+    saml_security_sign_metadata: %%saml_security_sign_metadata
133
+    saml_security_want_xml_validation: %%saml_security_want_xml_validation
134
+    saml_security_signature_algorithm: %%saml_security_signature_algorithm